Phishing… Don’t get hooked!
Phishing is a social engineering term used to trick users in to giving away sensitive information. A phishing method commonly used to exploit users is normally sent through an e-mail. This e-mail appears to be legitimate from a bank, or popular service such as Facebook but in fact the e-mail contains fraudulent links within the e-mail.
Users are normally tricked into clicking on one of these links which redirects the them to a webpage to enter details such as usernames, passwords, address information, even credit card numbers. These details are then sent to a hacker who then use these details in a fraudulent manager.
The fear of being phishing is a big concern for businesses and the home user. There are a number of key preventative measures that can be put into place. These will help reduce the number of phishing e-mails received and help deal with those that get through to your system.
- Install a spamming filter (This will help filter out a lot of spam e-mails that are being received)
- The best most effective method is how you interact with your system. If you think a phishing e-mail has got through, and the sender looks suspicious then delete it – Do not risk it and click on links contained within the e-mail.
- If by accident you click on a link and the web browser re-directs you to a website, check the website address (URL). Perhaps the website address looks suspicious then close the browser window and delete the e-mail.
- It is vital that staff know that if they have been ‘Phished’ that they must tell somebody immediately. Without fear of reprisal as time is critical when dealing with ransomware.
SafeHack UK provides a new e-mail simulated Phishing e-mail service. Which we highly recommend to help raise security awareness within your business.
Take a look at our phishing services page for more information.